Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

2dd772eeb5...08.pdf

windows7-x64

1

2dd772eeb5...08.pdf

windows10-2004-x64

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    19/12/2023, 13:08

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2dd772eeb557d102dd8982bbef59d308.pdf

  • Size

    68KB

  • MD5

    2dd772eeb557d102dd8982bbef59d308

  • SHA1

    3b596c0f0210934f021bc3da28eabfa25e1c421a

  • SHA256

    b3f3503d21d20cf59ad9fa99001a34b830a914a5a7b4d404f00f3e6946305711

  • SHA512

    a0213b32daae114dc4702e7d556860a6f98dd4cdc3be9ff6bc0e4b483381423f4d2210fad56292ecd695e24c9d7d4016d65609a3dc7c8e9acea1973e3d8656d1

  • SSDEEP

    1536:3DWcgZIDSiohvAud45Y6XhywGwJWN+FD6YW7kQMW6pOu2zYjN+pOg:TDKhvGFXwwjR+73Fu2zYx+r

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2dd772eeb557d102dd8982bbef59d308.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1712

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    40efeefdb9f063e6a1cd219125dd0c94

    SHA1

    864a72b72a1bf77bc09119a76a26bef0ff79c7f1

    SHA256

    01384f486cd6c62ad1c19c0f5a229b818faf0eb5e11474823f7452cc54f108f5

    SHA512

    c2cbdda4d3c19914b65384be48e2ce33880eaac4f060de6f1b8d27bd167d7cd0a017765e3f19f8779b0b7c262879c07ac53450f9c90bdf4e7ba3d96db77867ca

    Download Submit